$ rpki-client -vvf rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft File: _zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft (raw, json) Hash identifier: J66q8Tg0CY38d1975kuOmCJ6T+/6a8kjhJXFDf+SWnk= Subject key identifier: 81:AF:9F:17:D4:01:38:26:F8:A1:D2:70:2F:51:A5:6F:5A:47:25:CE Authority key identifier: FF:32:78:A3:AD:58:B1:8A:54:6E:3F:ED:CD:53:78:40:52:77:67:A8 Certificate issuer: /CN=A914A8CB/serialNumber=FF3278A3AD58B18A546E3FEDCD537840527767A8 Certificate serial: 1B3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft Manifest number: 1B26 Signing time: Fri 18 Jul 2025 16:24:47 +0000 Manifest this update: Fri 18 Jul 2025 16:24:46 +0000 Manifest next update: Fri 25 Jul 2025 16:24:46 +0000 Files and hashes: 1: _zJ4o61YsYpUbj_tzVN4QFJ3Z6g.crl (hash: Gt/weAIfEhXwcf+mVfuhWfVldFOr41jzdGAIzC8tXV0=) 2: 90C8D27021C211E786829418C4F9AE02.roa (hash: SG/JJrCv6+bEqjSz1EdPiULof9NKJsxI6no6f7rqWm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.crl rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:24:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6974 (0x1b3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A8CB, serialNumber=FF3278A3AD58B18A546E3FEDCD537840527767A8 Validity Not Before: Jul 18 16:24:46 2025 GMT Not After : Jul 25 16:24:46 2025 GMT Subject: CN=687a754e-6e16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:67:20:53:e3:06:6e:c6:55:2c:cc:14:74:d2: df:8c:79:c8:87:c8:d8:71:74:bc:68:9a:16:8e:ee: 0c:68:9c:12:a2:11:bb:ef:9e:66:2d:3e:c1:2f:6f: ca:fe:e2:db:14:6e:43:4a:9b:be:ee:08:62:b9:85: a3:fe:1d:77:2b:5a:77:83:5c:0e:98:f2:fc:13:7d: 8d:c3:55:9c:9b:d9:a5:c0:fd:ed:b8:cf:59:e2:0d: 83:98:7d:e5:78:48:b0:31:d4:bd:2b:4c:8e:1b:a0: 64:3c:88:dc:42:1c:48:aa:bc:fa:3b:ac:d0:49:1e: 25:d3:99:b9:24:c4:97:d0:82:82:59:25:e2:12:95: 69:55:fa:66:fe:9a:b3:ca:f3:2a:53:84:df:e9:70: 1c:0a:e5:e9:fb:ec:c3:e8:8f:e1:29:f6:54:6f:20: 46:1a:8e:2c:8f:41:db:0b:3e:01:ad:b2:76:35:e4: c3:71:d2:a5:78:fd:96:e4:5b:a1:83:4d:30:b4:7b: d1:c3:4c:fc:28:c0:9f:71:d8:5a:c6:64:20:db:77: 05:ff:89:27:ff:9b:22:03:c2:ec:6f:96:6d:72:3d: 3e:ab:63:96:51:7c:84:00:5c:c8:92:f4:3e:9c:09: c1:55:b3:ec:47:d5:37:76:52:3f:b8:f6:20:6b:84: 6b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:AF:9F:17:D4:01:38:26:F8:A1:D2:70:2F:51:A5:6F:5A:47:25:CE X509v3 Authority Key Identifier: keyid:FF:32:78:A3:AD:58:B1:8A:54:6E:3F:ED:CD:53:78:40:52:77:67:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:e3:72:c3:63:c5:e5:10:7b:98:3a:e7:fb:e7:26:7e:5d:0c: a3:0e:9b:66:48:74:88:ea:5f:cf:b9:cb:14:41:cb:42:26:f5: d8:b9:b5:a8:b5:d4:cb:e8:30:bf:ab:0a:13:dc:d1:7f:15:fd: 34:da:da:25:ca:bb:9f:5c:e5:23:be:ae:d9:24:29:29:9d:06: 8c:a8:fb:cc:d3:94:98:78:9c:b8:1d:66:47:52:3d:90:90:8a: 75:f9:59:68:16:38:cf:71:0e:c6:a2:03:a0:6e:7a:63:95:31: a9:0a:88:18:ca:94:fa:63:e1:6e:4c:45:df:57:5f:a7:68:f6: 67:d0:20:8f:df:d5:bf:b8:48:8b:6a:5b:c4:18:43:e2:6a:94: c4:c8:97:86:20:5e:3e:c7:5d:cd:26:fa:6b:ae:cc:c3:0b:fb: ee:f0:bc:2c:16:52:95:3a:6a:a5:f5:a3:17:fb:05:2d:e4:ba: 79:81:4b:e9:fc:c1:07:61:8a:08:86:f7:84:70:0b:81:ca:df: ea:2d:87:80:e8:30:55:03:40:6e:28:76:72:1f:51:78:97:e1: 72:3a:ec:98:4f:97:a8:7b:c4:3b:05:ed:9f:2e:6a:e3:91:ca: 2c:17:4e:e3:46:6a:70:eb:c4:c1:fd:d7:d5:cf:d4:08:f6:51: 88:36:b8:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE4Q0IxMTAvBgNVBAUTKEZGMzI3OEEzQUQ1OEIxOEE1NDZFM0ZFRENENTM3ODQw NTI3NzY3QTgwHhcNMjUwNzE4MTYyNDQ2WhcNMjUwNzI1MTYyNDQ2WjAYMRYwFAYD VQQDEw02ODdhNzU0ZS02ZTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WcgU+MGbsZVLMwUdNLfjHnIh8jYcXS8aJoWju4MaJwSohG7755mLT7BL2/K /uLbFG5DSpu+7ghiuYWj/h13K1p3g1wOmPL8E32Nw1Wcm9mlwP3tuM9Z4g2DmH3l eEiwMdS9K0yOG6BkPIjcQhxIqrz6O6zQSR4l05m5JMSX0IKCWSXiEpVpVfpm/pqz yvMqU4Tf6XAcCuXp++zD6I/hKfZUbyBGGo4sj0HbCz4BrbJ2NeTDcdKleP2W5Fuh g00wtHvRw0z8KMCfcdhaxmQg23cF/4kn/5siA8Lsb5Ztcj0+q2OWUXyEAFzIkvQ+ nAnBVbPsR9U3dlI/uPYga4RrwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGvnxfU ATgm+KHScC9RpW9aRyXOMB8GA1UdIwQYMBaAFP8yeKOtWLGKVG4/7c1TeEBSd2eo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QThDQi9DOEIwRjRGMjIx QzExMUU3OTU0RTg3MTdDNEY5QUUwMi9feko0bzYxWXNZcFVial90elZONFFGSjNa NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL196SjRvNjFZc1lwVWJqX3R6Vk40UUZKM1o2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QThDQi9DOEIwRjRGMjIxQzExMUU3OTU0RTg3MTdDNEY5QUUwMi9feko0bzYxWXNZ cFVial90elZONFFGSjNaNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB343LDY8XlEHuYOuf75yZ+XQyjDptmSHSI6l/PucsUQctCJvXYubWo tdTL6DC/qwoT3NF/Ff002tolyrufXOUjvq7ZJCkpnQaMqPvM05SYeJy4HWZHUj2Q kIp1+VloFjjPcQ7GogOgbnpjlTGpCogYypT6Y+FuTEXfV1+naPZn0CCP39W/uEiL alvEGEPiapTEyJeGIF4+x13NJvprrszDC/vu8LwsFlKVOmql9aMX+wUt5Lp5gUvp /MEHYYoIhveEcAuByt/qLYeA6DBVA0BuKHZyH1F4l+FyOuyYT5eoe8Q7Be2fLmrj kcosF07jRmpw68TB/dfVz9QI9lGINriF -----END CERTIFICATE-----Generated at Sun Jul 20 03:27:04 2025 by rpki-client